Jump to content
siratfus

3 Trojan.Zitmo found in rooted International Galaxy Note 2.. help!

Recommended Posts

Hey guys, what is trojan.zitmo? The scan results show:

 

1. Android/Trojan.Zitmo

/system/app/SeeContacts.apk

 

2. Android/Trojan.Zitmo

/system/app/NetworkLocation.apk

 

3. Android/Trojan.Zitmo

/system/app/torch.apk

 

Is this harmful? I tried deleting them, but they were all unsuccessful.

 

Please advise. 

Share this post


Link to post
Share on other sites

Hi Siratfus

 

 

When you add them to  the whitelist, Malwarebytes will not detect them as malicious software in future scans. 

 

 

Could you please tell me what operating system are you running on your Galaxy Note 2 ?  Is  it the stock rom or a custom rom, if it is a custom rom could you tell me which one you are using and where did you download it from?

 

Thanks,

Jerry Li

Share this post


Link to post
Share on other sites

Hi Jerry, it is 4.1.2

 

The phone was given to me and I was told it was rooted. But I actually do not know how to take advantage of a rooted phone. So I'm not sure if it was stock or custom rom. Is there a way for me to find out? Would baseband and Kernel version info help? And is it safe to display those serials in a public forum?

Share this post


Link to post
Share on other sites

Hi 

 

Yes, if you could tell us the exact model number, Baseband version, kernel version, and build number  for your phone it would help us determine if you are running the stock rom or a custom rom.  It is safe to share it since it does not contain any personal information. 

 

To find this information  please  Go to  Settings > More Tab or the very bottom of the menu > Then tap  About Device or About Phone to have  all of the information view able.  

 

Thanks,

Jerry Li

Share this post


Link to post
Share on other sites

GT-N7100

Android 4.1.2

baseband: N7100ZCDMD3

kernal: 3.0.31-857946

se.infra@SEP-76#1

SMP PREEMPT Wed Apr 17 14.:15:44 KST 2013

Build number: GT-N7100ZCDMD3

Share this post


Link to post
Share on other sites

Hi Siratfus,

 

Thanks for reporting this and working with Jerry to help us identify the app versions for your ROM. I was able to track down suspected detection method and disable it, while I research the reason for the fp. At this time I don't suspect any malware on your ROM.

 

Please update your MBAM Mobile and let us know if the detection is still present.

 

Thanks Jerry for working with Siratfus.

 

-Armando

Share this post


Link to post
Share on other sites

Hi Siratfus,

 

Thank you for the update and thank you for choosing Malwarebytes. This post will now be closed.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.